CVE-2014-9294

EPSS 33.3%

Published: 12/20/2014Modified: 4/28/2026

Description

util/ntp-keygen.c in ntp-keygen in NTP before 4.2.7p230 uses a weak RNG seed, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.

Affected packages (1)

Debian/ntpfrom 0, < 1:4.2.6.p5+dfsg-3.2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-9294